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REMOTE DEPLOYMENT OF EXECUTABLE CODE 
IN A PRE-BOOT ENVIRONMENT 

5 FTELD OF INVENTION 

[0001] The invention is in the field of data processing systems and, in particular, a data 
processing systems, methods, and media for remote wake-up and management of systems on a 
network. More particularly, the invention relates to systems, methods, and media for managing a 
10 remote client by deploying executable code in a modified wake-on-LAN (wherein "LAN" is an 
abbreviation for "local area network") packet, wherein BIOS retrieves and loads the executable 
code either directly from memory associated with a network receive buffer or, through use of an 
application, from a protected area run time interface extension services ("PARTIES") space of a 
hard drive associated with the remote client. 

15 

BACKGROUND 

[0002] Personal computer systems are well known in the art, and their widespread use 
provide computer power to many segments of today's modern society. Personal computers 

20 (PCs) are definable as a desktop, floor standing, or portable microcomputer that generally 
include a system unit having a central processing unit ("CPU") and associated volatile and non- 
volatile memory, including random access memory ("RAM") and basic input/output system read 
only memory ("BIOS ROM"), a system monitor, a keyboard, one or more flexible diskette 
drives, a CD-ROM drive, a fixed disk storage drive (also known as a "hard drive"), a pointing 

25 device such as a mouse, and an optional network interface adapter. One of the distinguishing 
characteristics of such a system is the use of a motherboard or system planar to electrically 
connect these components together. Examples of such personal computer systems are IBM's PC 
300™ series, Aptiva® series, and Intellistation® series. 

30 [0003] Connecting PCs via networks allows increased computing power, storage, and data 
transfer by pooling the resources associated with the individual clients of the greater computer 
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system. Despite the obvious advantages of networked computer systems, however, management, 
such as maintenance, updating and repair, of a client on the network may be troublesome 
because the client may be in a remote location to the system troubleshooter, such as a system 
administrator, operator, configurator, or manager. 

5 

[0004] In today's computer environment, remote management is essential in order to reduce 
maintenance costs. Otherwise, a system troubleshooter must travel or be local to the client to be 
managed - a cost-prohibitive solution for an organization having many dispersed clients. As a 
result, system management is typically performed in a central location for remote management of 
10 the clients. 

[0005] Despite the existence of remote management, most of the time, system management tools 
run on applications loaded on the computer system, and, therefore, require the primary operating 
system ("OS") to be loaded and functioning. However, when the OS does not load, for whatever 
1 5 reason, a system troubleshooter is unable to remotely manage or repair a client. 

[0006] Prior solutions for managing a client without the OS running typically perform a pre- 
execution environment ("PXE") boot to a server of the computer system, and then download a 
client image to boot. This is problematic, however, because a rogue server could easily hijack 

20 the client, and, therefore, compromise the computer system's integrity, that is, security. 
Providing a verification means for the server has also proven problematic to cure this rogue 
server/security situation because the amount of BIOS code necessary to validate the server 
typically breaks the BIOS flash ROM size. Therefore, remote management of a client by a PXE 
boot leaves the possibility of secure management, such as repair and updating of the client, 

25 unanswered. 

[0007] In addition to known solutions for remotely managing clients in a pre-boot environment, 
it is noteworthy to further discuss known methods for "waking up" clients desired to be 
managed. That is, oftentimes, in a pre-boot environment, a client to be managed may be asleep 
30 or powered-oflf. One known method for waking or powering up such a client is through use of 
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"wake-on-LAN" technology. This method permits a remote client, or associated part thereof, on 
the network to power-up by transmitting a wake-on-LAN packet having the appropriate 
information. A commonly known wake-on-LAN technology for achieving the remote wake-up 
of a client is through use of AMD's Magic-Packet® Even after waking up the client desired to 
5 be managed, however, the problem of the above-discussed prior solutions remains. That is, 
remote management of a client by a PXE boot is not secure. 

[0008] A need, therefore, exists, for methods, systems, and media for managing a remote 
client on a computer system in a secure manner, and especially so if the operating system is not 
1 0 loaded or functioning. 

SUMMARY OF THE INVENTION 

[0009] Embodiments of the invention generally provide methods, systems, and media for 
15 managing a remote client of a computer system. In one embodiment, the method generally 
includes receiving a modified wake-on-LAN packet to a network receive buffer on the remote 
client, wherein the modified wake-on-LAN packet comprises executable code or functions. 
Further, the method includes storing of the executable code or functions in memory associated 
with the network receive buffer, and retrieving, by BIOS associated with the remote client, of the 
20 executable code or functions from the memory. Further still, the method includes processing, by 
the BIOS, of the executable code or functions. 

[0010] Another embodiment involves a service for managing a remote client of a computer 
system. The service generally includes adding executable code to a wake-on-LAN packet to 
25 yield the modified wake-on-LAN packet, wherein the executable code is designed for storage in 
a network receive buffer and processing by BIOS associated with the remote client; and 
transmitting the modified wake-on-LAN packet to the remote client via a network in 
communication with the remote client and a computer associated with the computer system. 
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[0011] A further embodiment provides a system for managing a remote client of a computer 
system. The system generally includes a network in communication with the remote client and a 
computer associated with the computer system, and a network receive buffer on the remote client 
for receiving a modified wake-on-LAN packet, wherein the modified wake-on-LAN packet 
5 comprises executable code or functions. Further, the system includes memory coupled to a 
processor of the remote client, wherein the memory comprises a first instruction for BIOS 
associated with the remote client to store the executable code or functions in the memory, a 
second instruction to retrieve the executable code or functions from the memory, and a third 
instruction to process the executable code or functions. 

10 

[0012] Yet another embodiment provides a machine-accessible medium containing 
instructions, which when executed by a machine, causes the machine to perform operations for 
managing a remote client of a computer system. The instructions generally include operations 
for receiving a modified wake-on-LAN packet via a network receive buffer on the remote client, 
15 wherein the modified wake-on-LAN packet comprises executable code or functions. Further, the 
instructions include operations for storing of the executable code or functions in memory 
associated with the network receive buffer, and instructions for retrieving, by BIOS associated 
with the remote client, of the executable code or functions from the memory. Further still, the 
instructions include operations for processing, by the BIOS, of the executable code or functions. 



20 
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BRIEF DESCRIPTION OF THE DRAWINGS 

[0013] So that the manner in which the above recited features, advantages and objects of the 
present invention are attained and can be understood in detail, a more particular description of 
5 the invention, briefly summarized above, may be had by reference to the embodiments thereof 
which are illustrated in the appended drawings. 

[0014J It is to be noted, however, that the appended drawings illustrate only typical 
embodiments of this invention and are therefore not to be considered limiting of its scope, for the 
10 invention may admit to other equally effective embodiments. 

[001 5J FIG. 1 depicts an environment for a system for remote wake-up and management of a 
client computer by a computer according to one embodiment. 

15 [0016] FIG. 2 depicts an exploded perspective view of certain elements of a personal 
computer according to one embodiment, including a chassis, a cover, and a planar board. 

[0017] FIG. 3 depicts a block diagram of certain components of the personal computer of 
FIG. 2. 

20 

[0018] FIG. 4 depicts a diagrammatic representation of a network packet which is sent by a 
personal computer according to one embodiment. 

[0019] FIG. 5 depicts a diagrammatic representation of a network packet which is sent by a 
25 personal computer according to one embodiment. 

[0020] FIG. 6 depicts an example embodiment of a system for managing a remote client of a 
computer system in accordance with the disclosed invention. 
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[0021] FIG. 7 depicts a flowchart managing a remote client of a computer system in 
accordance with the disclosed invention. 

DETAILED DESCRIPTION OF EXAMPLE EMBODIMENTS 

5 

[0022] The following is a detailed description of example embodiments of the invention 
depicted in the accompanying drawings. The embodiments are examples and are in such detail 
as to clearly communicate the invention. However, the amount of detail offered is not intended 
to limit the anticipated variations of embodiments; on the contrary, the intention is to cover all 
10 modifications, equivalents, and alternatives falling within the spirit and scope of the present 
invention as defined by the appended claims. The detailed descriptions below are designed to 
make such embodiments obvious to a person of ordinary skill in the art. 

[0023] Generally speaking, systems, methods, and media for managing a remote client of a 

15 computer system are contemplated. Embodiments include a computer system having a computer 
in connection with the remote client over a network. The remote client has the capability of 
accepting and understanding wake-on-LAN ("WOL") packets, such as AMD's Magic Packets, 
which serve to wake an otherwise powered-off, remote client seeking to be managed by a system 
administrator or similarly empowered network authority ("troubleshooter"). Before a 

20 troubleshooter transmits an ordinary WOL to the remote client, software and/or hardware 
associated with the troubleshooter 5 s computer permits modification of the ordinary WOL by the 
addition of data, such as executable code, functions, or any other desired addition to the payload 
portion of the ordinary WOL packet(s) for ultimate deployment in managing of the remote client. 
The additional data in the payload of the ordinary WOL results in the formation of what is 

25 termed a "modified wake-on-LAN" or "modified WOL" packet(s). The troubleshooter 
transmits, via the network, the modified WOL to a network receive buffer, such as one on a 
network interface card ("NIC") having WOL support capabilities, associated with the remote 
client. Before the remote client may utilize the modified WOL, however, the troubleshooter 
should modify the BIOS with instructions or engage BIOS settings enabled by software and/or 

30 hardware associated with the computer system. These instructions direct the BIOS how to 
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behave in response to the modified WOL packets, which contain the additional data, once the 
modified WOL packets are received by the network receive buffer. In one instance, the 
instructions inform the BIOS to store the executable code or functions, such as a ROM BIOS 
extension, in memory associated with the network receive buffer, then to retrieve the executable 
5 code or functions in memory associated with the network receive buffer, and then to process the 
executable code after optional validation of the retrieved, executable code or functions. In 
another instance, the instructions inform the BIOS to retrieve the modified WOL packets from 
the network receive buffer, store the additional data within the modified WOL packets to a 
protection area run time interface extension services ("PARTIES") space on the hard drive, 

10 wherein the PARTIES space, in layman's parlance, is a hidden area, outside of the purview of 
the operating system associated with the computer system. Before storing the additional data, 
however, further instructions may have the BIOS query the integrity of the received modified 
WOL to ensure security of the computer system is not compromised in any manner. Such 
verification query instructions may include the use of a private/public key algorithm associated 

15 with the modified WOL and the computer system. Presuming execution of optional verification 
instructions confirm the integrity of the modified WOL, then after storing the additional data to 
the PARTIES, further instructions provided through software and/or hardware to the BIOS direct 
the BIOS to boot from the PARTIES. With all of the aforementioned occurring without the 
running or functioning of the operating system associated with the computer system, a preloaded 

20 application on the PARTIES partition accesses the additional data after the booting, and parses 
the additional data, wherein the application then interprets and executes the application, and 
thereby, uses the additional data in order to manage the remote client. As a result, the underlying 
additional data deployed in the payload to produce the transmitted, modified WOL performs the 
management function desired by the troubleshooter. 

25 

[0024] Turning now to the drawings, FIG 1 depicts one embodiment of a data processing 
system 101 for providing wake-up and management of client computers according to one 
embodiment. System 101 includes a computer 102 ("computer 5 ') coupled to one or more remote 
clients, wherein one is termed a "remote client" 104, within an overall computer system 106. 
30 The remote client 104 may be equipped with WOL capability, which provides them with the 
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ability to be "asleep" in a low-power state while also providing the ability to be "woken up", or 
returned to a full power state, when a WOL-equipped NIC receives the appropriate WOL 
command. WOL is also sometimes known as remote wake-up or Magic Packet technology. In 
system 101, the computer 102 and remote client 104 may be located at the same location, such as 
5 in the same building or computer lab, or could be geographically separated. While the term 
"remote" is used with reference to the distance between the computer 102 and remote client 104, 
the term is used in the sense of indicating separation of some sort, rather than in the sense of 
indicating a large physical distance between the systems. In fact, the computer 102 and remote 
client 104 may be physically adjacent in some network arrangements. 

10 

[0025] In one embodiment, remote client 102 is connected to a hub (not shown) utilizing a 
local area network (LAN) connector bus 106. In this embodiment, one or more clients 104 also 
connect to the hub through respective LAN busses 108. One form of the network conforms to 
the Ethernet specification and uses such hubs. It will be appreciated, however, that other forms 
15 of networks, such as token ring, may be utilized to implement the invention. 

[0026] The computer 102 and one or more remote clients 104 are therefore associated one 
with the other through some form of LAN or the like, in which effective communication may be 
established through electrically conductive connections, through fiber optical links, through 
20 infrared or other radiation links, or in other manners. A "network" may include any type of data 
communications channel, such as an Ethernet network, token ring, X.10, X.25, etc. Those 
skilled in the art will recognize that the invention described herein may be implemented utilizing 
any type of data communications channel. 

25 [0027] FIGS. 2 and 3 depict one embodiment of a personal computer 12 suitable for use as, 
for example, a remote client 104. In one embodiment, computer 102 may also be a personal 
computer 12. Alternatively, the computer 102 may be some computer having capabilities other 
than those ascribed herein to a "personal computer", and possibly beyond those capabilities. 
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[0028] As shown in FIG. 2, personal computer 12 comprises a cover 14 which is a decorative 
outer member which cooperates with a chassis 30 in defining an enclosed, shielded volume for 
receiving electrically powered data processing and storage components for processing and 
storing digital data. At least certain of these components are mounted on a multi-layer planar 32 

5 or motherboard which is mounted on the chassis 30 and provides a means for electrically 
interconnecting the components of the personal computer 12 including those identified above 
and such other associated elements as floppy disk drives, various forms of direct access storage 
devices, accessory adapter cards or boards, and the like. As pointed out more fully hereinafter, 
provisions are made in the planar 32 for the passage of input/output signals to and from the 

10 operating components of the personal computer 12. 

[0029] Personal computer 12 has a power supply 34, which may be actuated by a power 
switch (not shown). The chassis 30 has a base indicated at 36, a front panel indicated at 38, and a 
rear panel indicated at 40. The front panel 38 defines at least one open bay for receiving a data 

15 storage device such as a disk drive for magnetic or optical disks, a tape backup drive, or the like. 
In the illustrated form, a pair of upper bays 42, 44 and a lower bay 46 are provided. One of the 
upper bays 42 is adapted to receive peripheral drives of a first size (such as those known as 3.5 
inch drives) while the other 44 is adapted to receive drives of a different size (such as a CD- 
ROM or DVD-ROM drive) and the lower bay is adapted to receive another drive. One floppy 

20 disk drive indicated at 48 is a removable medium direct access storage device (DASD) capable 
of receiving a diskette inserted there into and using the diskette to receive, store and deliver data 
as is generally known. One CD-ROM drive indicated at 50 is a removable medium DASD 
capable of receiving a compact disc inserted there into and using the disc to deliver data as is 
generally known. One hard disk drive is indicated at 52 and is a fixed medium DASD capable of 

25 storing and delivering data as is generally known. 

[0030] Referring now to FIG. 3, there is shown a block diagram of a client computer system 
illustrating the various components of the personal computer of FIG. 2. The components of FIG 
3 comprise components mounted on the planar 32 or other hardware of the personal computer 
30 12. Connected to the planar 32 is the system CPU or processor 54 which is connected directly to 
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a high speed host bus 56. A first system core logic chipset 58 and L2 cache memory 60 are also 
connected to the host bus 56. The first core logic chipset 58 includes a memory control unit, a L2 
cache controller and a peripheral component interconnect (PCI) bridge. The memory control 
unit is further connected to a volatile random access memory (RAM) 62. The RAM memory 62 
5 is composed of one or more memory modules. The memory control unit, or memory controller, 
includes the logic for mapping addresses to and from the microprocessor 54 to particular areas of 
RAM 62. The cache controller is operatively coupled to the L2 cache memory 60. 

[0031] The first core chipset 58 can be, for example, a Triton VX chip which is sold by Intel 
10 Corporation. The PCI bridge within chipset 58 provides an interface between the host bus 56 
and a PCI bus 64. Connected to the PCI bus 64 is a second core chipset 66 and a plurality of PCI 
expansion connectors 68 for receiving PCI bus compatible peripheral cards. One such peripheral 
card is a video controller 70. The video controller 70 includes video memory and is coupled to 
the monitor or video display terminal 72. The chipset 66 can be, for example, a PIIX4 chip 
1 5 which is also sold by Intel Corporation. 

[0032] The chipset 66 contains a bus control and timing unit, a plurality of timers, an 
interrupt controller, a direct memory access (DMA) unit, nonvolatile CMOS RAM (also herein 
referred to as NVRAM), a CMOS real-time clock (RTC), Flash memory interface, a PCI/ISA 

20 bridge, an integrated drive electronics (IDE) controller, and power management circuitry. The 
PCI/ISA bridge provides an interface between the PCI bus 64 and an optional feature or 
expansion bus such as the Industry Standard Architecture (ISA) bus 74. Connected to the ISA 
bus 74 are a plurality of ISA expansion connectors 76 for receiving ISA adapter cards (not 
shown). ISA adapter cards can be pluggably connected to the ISA expansion connectors 76 and 

25 may provide additional devices or memory for the personal computer 12. 



[0033] Attached to the chipset 66 is a flash memory (FM) module or chip 78. Flash memory 
module 78 contains microcode that personal computer 12 will execute on power on and 
comprises. The flash memory 78 is an electrically erasable programmable read only memory 
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(EEPROM) module or chip. The IDE controller provides for the attachment of IDE compatible 
storage devices such as the fixed disk drive 52 and CD-ROM drive 50. 

[0034] The real-time clock is used for time of day calculations and the NVRAM is used to 
5 store system configuration data. That is, the NVRAM will contain values which describe the 
present configuration of the personal computer 12. For example, NVRAM 66 contains 
information describing the type of fixed disk or diskette, the list of IPL devices set by a user and 
the sequence to be used for a particular power on method, the type of display, the amount of 
memory, time, date, etc. Furthermore, these data are stored in NVRAM whenever a special 
10 configuration program, such as configuration/setup, is executed. The purpose of the 
configuration/setup program is to store values characterizing the configuration of the system to 
NVRAM. 

[0035] Power management logic within chipset 66 is for changing the personal computer 12 
15 between various power states (e.g., off, suspend and normal operating states). The circuitry is 
supplied with auxiliary power (AUX) from the power supply 34 (as shown in FIG. 2) when the 
personal computer 12 is in the off state so that it can monitor events which cause the personal 
computer 12 to turn on. For example, the circuitry 66 also includes a timer which is configurable 
by a user to expire after a predetermined period of time. When the timer expires, the circuitry 66 
20 will cause the personal computer 12 to change from the off state to the normal operating state. 

[0036] Coupled to the ISA bus 74 is a multi-function I/O controller 80 such as, for example, 
a National Semiconductor PC87307. The I/O controller 80 contains a variety of I/O adapters and 
other components such as the diskette adapter 82, serial adapter 84, a parallel adapter 86 and 
25 keyboard controller 88. The diskette adapter 82 provides the interface to the diskette drive 48. 
The serial adapter 84 has an external port connector 90 for attachment of external devices such as 
modems (not shown). The parallel adapter 86 has an external port connector 92 for attachment 
of external devices such as printers (not shown). The keyboard controller 88 is the interface for 
the keyboard connector 22 and the mouse connector 24. 

30 
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[0037] A communication subsystem 94 can be coupled to either the PCI bus 64 or ISA bus 
74 for allowing personal computer 12 to communicate (i.e., transmit/receive data) with a remote 
computer or server over a LAN via a connection or link 100. The communication subsystem 94 
can be, for example, a LAN adapter or a LAN connection embedded on the planar 32. 
5 Communication subsystem 94 may also be known as a network interface card (NIC). 
Communication subsystem 94 may include a Media Access Controller (MAC), which serves as 
an interface between a shared data path (e.g., a media independent interface as described below) 
and the PCI bus 64 (or ISA bus 74 if communication subsystem 94 were connected to the ISA 
bus 74). The MAC performs a number of functions involved in the transmission and reception 

10 of data packets. For example, during the transmission of data, the MAC assembles the data to be 
transmitted into a packet with address and error detection fields. Conversely, during the 
reception of a packet, the MAC disassembles the packet and performs address checking and error 
detection. In addition, the MAC typically performs encoding/decoding of digital signals 
transmitted over the shared path and performs preamble generation/removal as well as bit 

1 5 transmission/reception. The MAC can be, for example, an Intel 82557 chip. 

10038] The communication subsystem 94 further comprises a physical layer and a media 
independent interface (Mil), which is a local bus between the MAC and the physical layer. The 
MQ is a specification of signals and protocols which formalizes the interfacing of a 10/100 Mbps 

20 Ethernet MAC, for example, to the underlying physical layer. The physical layer receives 
parallel data from the ME local bus and converts it to serial data for transmission over cable 100. 
The physical layer may be, for example, an Integrated Circuits Systems 1890 chip. The physical 
layer includes auto-negotiation logic that, in one embodiment, determines the capabilities of the 
computer 102, advertises its own capabilities to the computer 102, and establishes a connection 

25 with the computer 102 using the highest performance common connection technology. 

[0039] When the communication subsystem 94 is in WOL mode (e.g., when the client 104 is 
asleep), communication subsystem 94 scans all incoming frames addressed to client 104 for a 
specific data sequence which indicates that the frame is a WOL or Magic Packet frame. WOL 
30 packets and frames are described in more detail in relation to FIGS 4 and 5. If the 
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communication subsystem 94 scans a frame and does not find the appropriate WOL sequence, it 
discards the frame and takes no further action. If it detects the WOL sequence, however, it then 
alerts the power management circuitry 66 to wake up or power on the system. 

5 [0040] While the invention is described hereinafter with particular reference to the system 
block diagram of FIG. 3, it is to be understood at the outset of the description which follows that 
it is contemplated that the apparatus and methods in accordance with the present invention may 
be used with other hardware configurations of the planar board. As one example, the system 
processor 54 could be an Intel Pentium processor, Cyrix 586-P75 processor or Advanced Micro 
10 Devices 8486 processor or any other suitable microprocessor. 

[0041] FIG 4 depicts a diagrammatic representation of a network packet which is sent by a 
personal computer 12 or computer 102 according to one embodiment. The network packet 400 
comprises a network header 402 and data packet 404 that can be sent over a network, such as an 
15 Ethernet network. Network header 402 includes a MAC header 406, IP header 408, and UDP 
header 412 which are all known in the art to provide addresses, identifiers, and other information 
for assuring correct transfer of the packet 400. Data packet 404 includes the information content 
to be transferred. 

20 [0042] The data packet 404 comprises a data type 420 which is first used to set up a category 
of data and a data portion 422, which provides specific information. The data type 420 indicates 
a transmission of system identification and capabilities. The data patterns defined are the (1) 
Universal Unique ID (UUID) which is used by computer 102 to reference personal computer 12, 
(2) serial number of personal computer 12 which is used by computer 102 to determine the 

25 model of personal computer 12, (3) IEEE Address which is assigned by IEEE to uniquely 
identify personal computer 12 on a network, and (4) Ethernet Vendor which identifies the vendor 
of the communication (Ethernet LAN) subsystem 94 in personal computer 12 used by the 
computer 102 to select the correct device driver. It should be understood that the data packet 404 
and data patterns shown in FIG. 4 are by way of example only, and other packets and patterns 

30 can be used with the invention. 
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[0043] As one example of another packet, a type of data packet 404 called a "Magic Packet" 
is depicted in FIG 5. In FIG. 5, data packet 404 comprises a Magic Packet frame 414 and 
command extensions 416. Magic Packet 414 comprises the source address (computer 102 MAC 

5 address), destination address (e.g., a remote client 104 MAC address or a multi-cast address for a 
broadcast Magic Packet), and a synchronization stream. The synchronization stream is typically 
six (6) bytes of FFh and is used to help client 104, particularly communication subsystem 94, 
recognize a frame as a Magic Packet frame 414. A delineator such as six bytes of FFh is easy for 
hardware to detect and identifies the information as a Magic Packet 414. In the embodiment 

10 depicted in FIG. 5, the content of Magic Packet 414 is a six bytes of "FF" followed by 16 copies 
of MAC addresses (with, for example, 8 copies of server MAC address and 8 copies of client 
MAC address) with no breaks or interruptions. In one alternative embodiment, there are 12 
copies of MAC addresses, where 6 copies are client MAC addresses and 6 copies are server 
MAC addresses. The MAC addresses may be located anywhere within the data packet 404 but 

15 are preferably preceded by a synchronization stream. Remote client 104 will, in one 
embodiment, confirm that the Magic Packet 104 contains the proper (and proper number of) 
synchronization stream, server MAC address, and client MAC address before initiating the 
power on process. 

20 [0044] In an alternative embodiment, a broadcast Magic Packet 414 may be used. In this 
embodiment, the Magic Packet 414 is intended to be received by all remote clients 104 on the 
network and the destination MAC address is listed as, for example, all ones (l's). This will 
indicate to remote client 104 that the Magic Packet 414 is intended for it, even though the client 
MAC address is not included. In another embodiment, a multicast broadcast to a specified group 

25 of remote clients 104 may be utilized. 

[0045] Data packet 404 also may include command extensions 416. Computer 102 may 
specify one of a plurality of command extensions in data packet 404 in order to modify the 
network activity of remote client 104 in a particular way. 



30 



IBMDkt.No.: RPS920030219US1 



Atty.Dkt.: IBM.4035.PAT 



[0046] When a network packet 400 is received by client 104, it is received by physical layer 
and placed on the Mil bus. When network packet 400 comprises a Magic Packet 414 (as shown 
in FIG. 5), the MAC detects that it includes Magic Packet 414, and then MAC ignores any 
command extensions 416. 

5 

[0047] Turning now to FIG. 6, a system 600 for managing a remote client 612 of a computer 
system 607 is depicted. The system 600 includes a network 610 in commutation with the remote 
client 612 and a computer 605 operated by a system administrator or the like ("troubleshooter"), 
who intends to manage the remote client 612. In order to manage the remote client 612 of the 

10 computer system 607 in a pre-boot environment, that is, without the operating system associated 
with the computer system 607 loaded and running, the troubleshooter modifies an ordinary WOL 
packet through enabling software and/or hardware, such as a WOL editor 699, associated with 
the remote client 605. The WOL editor 699 permits the troubleshooter to add additional data, 
such as executable code, functions, script, drivers, and so forth to the payload portion of a WOL 

15 packet. As a result, the WOL editor 699 permits the troubleshooter to generate a modified WOL 
packet 620 for use in managing the remote client 612. For example, the modified WOL packet 
620, may permit the remote client to not only "wake-up" the remote client, as is the function of 
an ordinary WOL packet, but the added additional data 627 of the modified WOL packet 620 
may permit a resident application 690 on the remote client 612 to restore the system 

20 configuration, update software on the computer system 607, renew lease information for leased 
applications associated with the computer system 607, supplement or repair ROM scans 
performed by component parts such as the network receive buffer 615 of the computer system 
607, and so on. In short, the additional data 690 in the modified WOL packet 620 may permit 
various and numerous types of management functions desired by the troubleshooter. 

25 

[0048] Before implementing the system 600, however, the troubleshooter or other 
empowered authority should provide the remote client 612 with pre-configuration instructions 
630 for the remote client 612 to inform the BIOS 625 and network receive buffer 615 of the 
remote client 612 how to behave in response to the received, modified WOL packet 620. The 
30 pre-configuration instructions 630, enabled by software and/or hardware, direct the BIOS 625 



IBMDkt.No.: RPS920030219US1 16 Atty. Dkt.: IBM.4035.PAT 

and network receive buffer 615 of the remote client 612 to act in a certain, pre-scribed manner. 
In addition to the pre-configuration instructions 630, and also enabled by software and/or 
hardware associated with the remote client 612, the remote client 612 also includes verification 
instructions 635 to ensure that the integrity of the computer system 607 is not compromised by 
5 an unwanted intruder, i.e., hacker, or the like. An example of such verification instructions 635 
include providing enabling logic for use of a public/private key algorithm utilized by the 
received, modified WOL packet 620 and the remote client 612 before storing the additional data 
627 on the remote client 612. In this manner, ultimate use of the additional data 627 by a 
resident application 690 on the remote client 612 in managing the remote client 612 occurs 
10 without compromising the overall security of the computer system 607. 

[0049] Through logic enabled by software and or hardware associated with the remote client 
612, the system 600 further includes receiving of the modified WOL packet 620 by a network 
receive buffer 615 on a NIC or the like. The modified WOL packet 620 is transmitted over a 

15 network 610 from the computer 605, and once received, a set of BIOS instructions 640 provided 
to the remote client 612 instruct the BIOS how to behave in response to the received, modified 
WOL packet(s). In one example, the set of BIOS instructions 640, which reside in memory 623, 
such as flash memory, instruct the BIOS 625 to store the modified WOL packet 620 in memory 
623 associated with the network receive buffer 615, to retrieve the modified WOL packet 620 

20 from the network receive buffer 615, and after executing optional verification instructions 635, 
the set of BIOS instructions 640 further instruct the BIOS 625 to store the additional data 627 of 
the modified WOL packet 620 in the protection area run time interface extension services 
("PARTIES") space 670 of a hard drive 660 associated with the remote client 612. The 
PARTIES space 670, in layman's parlance, is a hidden area of the hard drive 660 that is not 

25 visible by the operating system ("OS"), which may or may not be operating during an 
implementation of the disclosed invention. If the OS is not operating, for whatever reason, then 
management of a remote client 612 or associated resource is still possible, and this is a key 
advantage of the invention. That is, managing, including performing diagnostics on a down 
remote client 612 or associated resources is possible without having a running OS, which may be 

30 malfunctioning partly or solely in relation to the remote client 612. If the OS is operating, then 
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management of a remote client 612 or associated resource is also possible, but the added 
advantage of managing a remote client 612 without the OS is lost. It is understood, however, 
that this lost advantage in no way affects the scope or spirit of the disclosed and/or claimed 
invention. 

5 

[0050] Although FIG. 6 depicts the storing of the additional data 627 to the PARTIES space 
670, the additional data 627 is depicted as being in PARTIES space 670 so that the additional 
data 627 is accessible by a resident application 690 also stored in the PARTIES space 670. That 
is, the additional data 627 may be stored in another location on or in association with the remote 

10 client 612 or computer system 607, but the location should be one that the resident application 
690 on the PARTIES space 670 may access the additional data 627. After the set of BIOS 
instructions 640 further instructs the BIOS 625 to now boot to the PARTIES space 670, the 
resident application on the PARTIES space 670 utilizes the additional data 627, which is parsed 
by a parser module 694, and interpreted and executed by an executor module 695 enabled by 

15 logic associated with the application 690 or remote client 612 in order to perform the underlying 
function or purpose, i.e., management, associated with the additional data 627 found in the 
modified WOL packet(s) 620 that is received by the remote client 612. 

[0051] In another example, the set of BIOS instructions 640, which reside in memory 623, 
20 such as flash memory, instruct the BIOS 625 to store the modified WOL packet 620 in memory 
623 associated with the network receive buffer 615, to retrieve the modified WOL packet 620 
from the network receive buffer 615, and after executing optional verification instructions 635, 
the set of BIOS instructions 640 further instruct the BIOS 625 to process the additional data 627, 
i.e., executable code. Such an example embodiment is ideally suited when the additional data 
25 627 is a ROM BIOS extension added to the payload portion to form the modified WOL packet(s) 
620. In such an example, the advantage over loading the payload to the PARTIES space 670 is 
that if for some reason the BIOS 625 cannot boot from a PARTIES space 670, then it is still 
possible for BIOS 625 to process the additional data 627, that is, for example, a ROM BIOS 
extension, received in the memory 623 of the remote client 612. 



30 
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[0052] Turning now to FIG. 7, another aspect of the invention is disclosed. In particular, an 
embodiment of a flowchart 700 for managing a remote client of a computer system is disclosed. 
Flowchart 700 is for a system, such as system 600, as shown in FIG. 6. 

5 [0053] Flowchart 700 begins by adding 710 additional data to an ordinary WOL packet, such 
as AMD's Magic Packet. By a system operator or other empowered authority ("troubleshooter") 
adding 710 additional data to an ordinary WOL packet, the troubleshooter is modifying, made 
possible by enabling software and/or hardware, such as a WOL editor associated with the 
troubleshooter' s computer, server, workstation, or the like, an ordinary WOL packet. The adding 

10 710 of the additional data, such as executable code, functions, script, drivers, patches, fixes, and 
so forth to the payload portion of a WOL packet, the troubleshooter preparing a modified WOL 
packet for transmitting 715 to the remote client needing to or desired to be managed by the 
troubleshooter. As previously discussed, adding 710 the additional data to form the modified 
WOL packet 620, may permit the remote client to not only "wake-up" the remote client, as is the 

15 function of an ordinary WOL packet, but the added additional data of the modified WOL packet 
may permit a resident application on the remote client to restore the system configuration, update 
software on the computer system, renew lease information for leased applications associated 
with the computer system, perform diagnostics, supplement or repair ROM scans performed by 
component parts such as the network receive buffer of the computer system, and so on. These 

20 are but a few examples of how adding 710 additional data for ultimate management of the 
remote client is possible, but it is to be understood that what additional data is added is 
potentially limitless and dependent only on the imagination of the troubleshooter and the 
available resources associated with the remote client to be managed. 

25 [0054] The flowchart 700 continues by modifying 715 the BIOS with a set of instructions, 
wherein the BIOS is associated with the remote client and likely located in the remote client's 
flash memory. In modifying 715 the BIOS with a set of instructions, enabled by software and/or 
hardware associated with the computer system having the remote client, the troubleshooter or 
other empowered authority provides the remote client with the set of instructions for directing 
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the BIOS, network receive buffer, and other component parts on how to behave in response to 
received, modified WOL packet(s) that are to be transmitted 720 to the remote client. 

[0055] Moving down the flowchart 700, transmitting 720 of the modified WOL packet(s) 
5 from the troubleshooter' s computer to the remote client occurs over a network in communication 
with the computer and remote client. In one example embodiment, the transmitting 720 of the 
modified WOL packet(s) culminates in a network receive buffer of the remote client receiving 
the modified WOL packet(s). Once received, the set of instructions, in one embodiment, direct 
the BIOS to store 725 the additional data, i.e., executable code, in memory, such as flash 
10 memory, associated with the network receive buffer, and then to retrieve 730 the additional data, 
i.e., executable code, from the memory associated with the network receive buffer, for example, 
that memory and buffer found on a NIC. 

[0056] Before using the additional data found in the received, modified WOL packet(s), 
15 however, the flowchart 700 depicts a verifying decision block 735 for the verification 
instructions optionally provided for use by the remote client. If verification instructions exist, 
then the verification instructions, enabled by software and/or hardware, exist for execution by the 
client resource, queries the integrity of the received, modified WOL packet(s) to ensure that the 
security of the computer system 607 is not compromised by an unauthorized actions on the 
20 remote client, its resources, or the computer system as a whole. An example of such verification 
instructions include providing enabling logic for use of a public/private key algorithm utilized by 
the received, modified WOL packet and the remote client. If the executed verification 
instructions indicate that the modified WOL packets and/or the troubleshooter has authority to 
perform the particular management actions underlying the additional data, then the 
25 troubleshooter may continue down the flowchart 700 continues. However, if verification 
instructions render a failure 740 for whatever reason, such as due to timing out or unauthorized, 
modified WOL packet(s), then the flowchart 700 culminates without further processing of the 
modified WOL packet(s) received by the network receive buffer. 
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[0057] Presuming verification exists or the optional, verification instructions are not 
implemented, then the flowchart 700 continues by further implementation of the provided set of 
instructions that direct the BIOS to store 745 the additional data of the modified WOL packet in 
the protection area run time interface extension services ("PARTIES") space of a hard drive 
5 associated with the remote client, wherein PARTIES is a hidden area from the OS and often 
contains vendor applications that can be used with or without the OS up and running. Once 
stored, the provided set of instructions further direct BIOS to boot 750 to the PARTIES, wherein 
further logic associated with an application stored on PARTIES accesses the additional data 
stored on PARTIES. The flowchart 700 continues by the application parsing 760 the additional 
10 data, and after the application interprets the parsed additional data, the application executes the 
application now having the additional data in order for performing 770 the operations underlying 
the purpose of the additional data in the modified WOL packet(s) sent for managing the remote 
client. 

1 5 [0058] In another embodiment, and with reference to flowchart 700, after moving down the 
flowchart 700 from the top to the point of optionally determining whether verification exists 735, 
the flowchart 700 may move directly to performing 770 operations as shown on the flowchart 
700 if the above-discussed, optional verification exists 735. That is, in such an embodiment, the 
storing 745, booting 750, and parsing 760 of the additional data by an application do not occur. 

20 Instead, performing 770 the operations enabled by the retrieved, and optionally verified 
additional data, such as executable code, occurs by the BIOS. Such an example embodiment is 
ideally suited when the additional data is a ROM BIOS extension added to the payload portion to 
form the modified WOL packet(s). In such an example, the advantage over loading the payload 
to the PARTIES space is that if for some reason the BIOS cannot boot from a PARTIES space, 

25 then it is still possible for BIOS to process the additional data, that is, for example, a ROM BIOS 
extension, received in the memory of the remote client. 

[0059] One embodiment of the invention is implemented as a program product for use with a 
computer system such as, for example, the system 101 shown in FIG 1. The program product 
30 could be used on a computer 102, on a remote client 104, or any combination thereof, or on other 
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computer systems or processors. The program(s) of the program product defines functions of the 
embodiments (including the methods described herein) and can be contained on a variety of 
signal-bearing media. Illustrative signal-bearing media include, but are not limited to: (i) 
information permanently stored on non-writable storage media (e.g., read-only memory devices 
5 within a computer such as CD-ROM disks readable by a CD-ROM drive); (ii) alterable 
information stored on writable storage media (e.g., floppy disks within a diskette drive or hard- 
disk drive); and (iii) information conveyed to a computer by a communications medium, such as 
through a computer or telephone network, including wireless communications. The latter 
embodiment specifically includes information downloaded from the Internet and other networks. 
10 Such signal-bearing media, when carrying computer-readable instructions that direct the 
functions of the present invention, represent embodiments of the present invention. 

[0060] In general, the routines executed to implement the embodiments of the invention, may 
be part of an operating system or a specific application, component, program, module, object, or 

1 5 sequence of instructions. The computer program of the present invention typically is comprised 
of a multitude of instructions that will be translated by the native computer into a machine- 
readable format and hence executable instructions. Also, programs are comprised of variables 
and data structures that either reside locally to the program or are found in memory or on storage 
devices. In addition, various programs described hereinafter may be identified based upon the 

20 application for which they are implemented in a specific embodiment of the invention. 
However, it should be appreciated that any particular program nomenclature that follows is used 
merely for convenience, and thus the invention should not be limited to use solely in any specific 
application identified and/or implied by such nomenclature. 

25 [0061] It will be apparent to those skilled in the art having the benefit of this disclosure that 
the present invention contemplates methods, systems, and media for managing one or more 
client computer systems, where one or more clients may be asleep. It is understood that the form 
of the invention shown and described in the detailed description and the drawings are to be taken 
merely as examples. It is intended that the following claims be interpreted broadly to embrace 

30 all the variations of the example embodiments disclosed. 



